Unexpected marking work at the start of sweeping could have led to a use-after-free. This vulnerability affects Firefox < 129, Firefox ESR < 115.14, Firefox ESR < 128.1, Thunderbird < 128.1, and Thunderbird < 115.14.
History

Tue, 20 Aug 2024 20:30:00 +0000

Type Values Removed Values Added
CPEs cpe:2.3:a:mozilla:thunderbird:-:*:*:*:*:*:*:*

Fri, 16 Aug 2024 18:45:00 +0000

Type Values Removed Values Added
First Time appeared Redhat
Redhat enterprise Linux
Redhat rhel Aus
Redhat rhel E4s
Redhat rhel Els
Redhat rhel Eus
Redhat rhel Tus
CPEs cpe:/a:redhat:enterprise_linux:8
cpe:/a:redhat:enterprise_linux:9
cpe:/a:redhat:rhel_aus:8.2
cpe:/a:redhat:rhel_aus:8.4
cpe:/a:redhat:rhel_aus:8.6
cpe:/a:redhat:rhel_e4s:8.4
cpe:/a:redhat:rhel_e4s:8.6
cpe:/a:redhat:rhel_e4s:9.0
cpe:/a:redhat:rhel_eus:8.8
cpe:/a:redhat:rhel_eus:9.2
cpe:/a:redhat:rhel_tus:8.4
cpe:/a:redhat:rhel_tus:8.6
cpe:/o:redhat:rhel_els:7
Vendors & Products Redhat
Redhat enterprise Linux
Redhat rhel Aus
Redhat rhel E4s
Redhat rhel Els
Redhat rhel Eus
Redhat rhel Tus

Mon, 12 Aug 2024 16:30:00 +0000

Type Values Removed Values Added
First Time appeared Mozilla thunderbird
CPEs cpe:2.3:a:mozilla:firefox:*:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:firefox_esr:*:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:firefox_esr:128.0:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:thunderbird:*:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:thunderbird:128.0.1:*:*:*:*:*:*:*
Vendors & Products Mozilla thunderbird

Thu, 08 Aug 2024 23:00:00 +0000

Type Values Removed Values Added
Title Mozilla: Use-after-free in JavaScript garbage collection mozilla: Use-after-free in JavaScript garbage collection
References

Thu, 08 Aug 2024 13:15:00 +0000

Type Values Removed Values Added
Title mozilla: From NVD collector Mozilla: Use-after-free in JavaScript garbage collection
Weaknesses CWE-416
References

Wed, 07 Aug 2024 19:30:00 +0000

Type Values Removed Values Added
Title mozilla: From NVD collector
References
Metrics threat_severity

None

threat_severity

Important


Tue, 06 Aug 2024 22:30:00 +0000

Type Values Removed Values Added
Description Unexpected marking work at the start of sweeping could have led to a use-after-free. This vulnerability affects Firefox < 129, Firefox ESR < 115.14, and Firefox ESR < 128.1. Unexpected marking work at the start of sweeping could have led to a use-after-free. This vulnerability affects Firefox < 129, Firefox ESR < 115.14, Firefox ESR < 128.1, Thunderbird < 128.1, and Thunderbird < 115.14.
References

cve-icon MITRE

Status: PUBLISHED

Assigner: mozilla

Published: 2024-08-06T12:38:14.698Z

Updated: 2024-08-20T19:48:21.229Z

Reserved: 2024-08-05T23:30:16.029Z

Link: CVE-2024-7527

cve-icon Vulnrichment

Updated: 2024-08-06T15:19:49.222Z

cve-icon NVD

Status : Analyzed

Published: 2024-08-06T13:15:57.543

Modified: 2024-08-12T16:08:06.493

Link: CVE-2024-7527

cve-icon Redhat

Severity : Important

Publid Date: 2024-08-06T00:00:00Z

Links: CVE-2024-7527 - Bugzilla